Appl. No. 09/998,893 PATENT 

Amdt. dated: March 2, 2007 

Amendment Under 37 CFR 1.116 Expedited Procedure 
Examining Group 2137 

Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the 

application: 

Listing of Claims: 

1 . (Previously Presented) A method comprising the steps of: 

(a) receiving at an Identity System a request for a certificate related action for 

a user; and 

(b) retrieving by the Identity System a workflow for responding to said 
request from a set of workflows, wherein said set of workflows includes a plurality of workflows 
for responding to said certificate related action and wherein each workflow in said plurality of 
workflows corresponds to a different set of characteristics for a user and wherein said workflow 
for responding to said request corresponds to said certificate related action and a set of 
characteristics for said user from an identity profile maintained by the Identity System and 
including a user type. 

2. (Canceled) 

3. (Previously Presented) The method of claim 1, wherein a first workflow 
in said plurality of workflows contains a first set of directives and a second workflow in said 
plurality of workflows contains a second set of directives, wherein said first set of directives is 
different from said second set of directives. 

4. (Original) The method of claim 3, wherein said certificate related action 
is a certificate enrollment action, wherein said first workflow in said plurality of workflows calls 
for obtaining an approval before issuing a certificate and wherein said second workflow in said 
plurality of workflows does not call for obtaining an approval before issuing a certificate. 
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5. (Original) The method of claim 3, wherein said certificate related action 
is a certificate renewal action, wherein said first workflow in said plurality of workflows calls for 
retrieving an approval before renewing a certificate and wherein said second workflow in said 
plurality of workflows does not call for retrieving an approval before renewing a certificate. 

6. (Original) The method of claim 3, wherein said certificate related action 
is a certificate revocation action. 

7. (Original) The method of claim 3, further including the step of: 

(c) receiving said plurality of workflows. 

8. (Original) The method of claim 1, wherein said method further includes 

the step of: 

(d) performing said workflow, wherein said step (d) includes the steps of: 

(1) retrieving an approval response; and 

(2) obtaining a certificate. 



9. (Original) The method of claim 8, further including the steps of: 

(e) receiving a second request for a second certificate related action for a 

second user; 

(f) retrieving a second workflow for responding to said second request from 
said set of workflows, wherein said second workflow corresponds to said second certificate 
related action and a set of characteristics for said second user; and 

(g) performing said second workflow, wherein said step (g) includes the step 

of: 

(1) obtaining a second certificate without retrieving an approval response. 
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10. (Original) The method of claim 9, wherein said certificate related action 
is a certificate enrollment action and said second certificate related action is a certificate 
enrollment action. 

11. (Original) The method of claim 9, wherein said certificate related action 
is a certificate renewal action and said second certificate related action is a certificate renewal 
action. 

12. (Original) The method of claim 1, further including the step of: 

(h) performing said workflow, wherein said certificate related action is a 
certificate enrollment action and wherein said step (h) includes the step of: 

(1) obtaining a certificate, wherein said step (h)(1) includes the steps 

of 

(i) authenticating said user; 

(ii) forwarding said request to a Certificate Processing Server; 

(iii) receiving said certificate; and 

(iv) storing said certificate. 

13. (Original) The method of claim 1, further including the step of: 

(j) performing said workflow, wherein said certificate related action is a 
certificate renewal action and wherein said step (j) includes the step of: 

(1) obtaining a certificate renewal, wherein said step (j)(l) includes the 

steps of: 

(i) authenticating said user; 

(ii) forwarding said request to a Certificate Processing Server; 

(iii) receiving a certificate renewal acknowledgement. 

14. (Original) The method of claim 1, further including the step of: 
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(k) performing said workflow, wherein said certificate related action is a 
certificate revocation action and wherein said step (k) includes the step of: 

(1) revoking a certificate, wherein said step (k)(l) includes the steps 

of: 

(i) authenticating said user; and 

(ii) forwarding said request to a Certificate Processing Server. 

15. (Canceled) 

16. (Previously Presented) One or more processor readable storage devices 
having processor readable code embodied on said processor readable storage devices, said 
processor readable code for programming one or more processors to perform a method 
comprising the steps of: 

(a) receiving at an Identity System a request for a certificate related action for 

a user; and 

(b) retrieving by the Identity System a workflow for responding to said 
request from a set of workflows, wherein said set of workflows includes a plurality of workflows 
for responding to said certificate related action and wherein each workflow in said plurality of 
workflows corresponds to a different set of characteristics for a user and wherein said workflow 
for responding to said request corresponds to said certificate related action and a set of 
characteristics for said user from an identity profile maintained by the Identity System and 
including a user type. 

17. (Canceled) 

18. (Previously Presented) One or more processor readable storage devices 
according to claim 16, wherein a first workflow in said plurality of workflows contains a first set 
of directives and a second workflow in said plurality of workflows contains a second set of 
directives, wherein said first set of directives is different from said second set of directives. 
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19. (Original) One or more processor readable storage devices according to 
claim 18, wherein said certificate related action is a certificate enrollment action, wherein said 
first workflow in said plurality of workflows calls for obtaining an approval before issuing a 
cer tificate and wherein said second workflow in said plurality of workflows does not call for 
obtaining an approval before issuing a certificate. 

20. (Original) One or more processor readable storage devices according to 
claim 18, wherein said method further includes the step of: 

(c) receiving said plurality of workflows. 

21. (Original) One or more processor readable storage devices according to 
claim 16, wherein said method further includes the steps of: 

(d) performing said workflow, wherein said step (d) includes the steps of: 

(1) retrieving an approval response; and 

(2) obtaining a certificate; 

(e) receiving a second request for a second certificate related action for a 

second user; 

(f) retrieving a second workflow for responding to said second request from 
sa id set of workflows, wherein said second workflow corresponds to said second certificate 
related action and a set of characteristics for said second user; and 

(g) performing said second workflow, wherein said step (g) includes the step 

of: 

(1) obtaining a second certificate without retrieving an approval 

response. 
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22. (Original) One or more processor readable storage devices according to 



claim 21, wherein said certificate related action is a certificate enrollment action and said second 
certificate related action is a certificate enrollment action. 

23. (Original) One or more processor readable storage devices according to 
claim 16, wherein said method further includes the step of: 

(h) performing said workflow, wherein said certificate related action is a 
certificate enrollment action and wherein said step (h) includes the step of: 

(1) obtaining a certificate, wherein said step (h)(1) includes the steps 



of: 



(i) 



authenticating said user; 



(ii) 
(iii) 



forwarding said request to a Certificate Processing Server; 
receiving said certificate; and 



(iv) 



storing said certificate. 



24. (Previously Presented) One or more processor readable storage devices 
according to claim 16, wherein said method further includes the step of: 

(j) performing said workflow, wherein said certificate related action is a 
certificate renewal action and wherein said step (j) includes the step of: 

(1) obtaining a certificate, wherein said step (j)(l) includes the steps 



(i) 



authenticating said user; 



(ii) forwarding said request to a Certificate Processing Server; 



and 



(iii) - receiving a certificate renewal acknowledgement. 
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25. (Original) One or more processor readable storage devices according to 
claim 16, wherein said method further includes the step of: 

(k) performing said workflow, wherein said certificate related action is a 
certificate revocation action and wherein said step (k) includes the step of: 

(1) revoking a certificate, wherein said step (k)(l) includes the steps 

of: 

(i) authenticating said user; and 

(ii) forwarding said request to a Certificate Processing Server. 

26. (Canceled) 

27. (Previously Presented) An apparatus comprising: 
one or more communications interfaces; 

one or more storage devices; and 

one or more processors in communication with said one or more storage devices 
and said one or more communication interfaces, said one or more processors perform a method 
comprising the steps of: 

(a) receiving at an Identity System a request for a certificate related action for 

a user; and 

(b) retrieving by the Identity System a workflow for responding to said 
request from a set of workflows, wherein said set of workflows includes a plurality of workflows 
for responding to said certificate related action and wherein each workflow in said plurality of 
workflows corresponds to a different set of characteristics for a user and wherein said workflow 
for responding to said request corresponds to said certificate related action and a set of 
characteristics for said user from an identity profile maintained by the Identity System and 
including a user type. 
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PATENT 



29. (Previously Presented) The apparatus of claim 27, wherein a first 
workflow in said plurality of workflows contains a first set of directives and a second workflow 
in said plurality of workflows contains a second set of directives, wherein said first set of 
directives is different from said second set of directives. 

30. (Original) The apparatus of claim 29, wherein said certificate related 
action is a certificate enrollment action, wherein said first workflow in said plurality of 
workflows calls for obtaining an approval before issuing a certificate and wherein said second 
workflow in said plurality of workflows does not call for obtaining an approval before issuing a 
certificate. 

3 1 . (Previously Presented) The apparatus of claim 29, wherein said method 
further includes the step of: 

(c) receiving said plurality of workflows. 

32. (Previously Presented) The apparatus of claim 27, wherein said method 
further includes the steps of: 

(d) performing said workflow, wherein said step (d) includes the steps of: 

(1) retrieving an approval response; and 

(2) obtaining a certificate; 

(e) receiving a second request for a second certificate related action for a 

second user; 

(f) retrieving a second workflow for responding to said second request from 
said set of workflows, wherein said second workflow corresponds to said second certificate 
related action and a set of characteristics for said second user; and 

(g) performing said second workflow, wherein said step (g) includes the step 

of: 

(1) obtaining a second certificate without retrieving an approval 
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response. 

33. (Original) The apparatus of claim 32, wherein said certificate related 
action is a certificate enrollment action and said second certificate related action is a certificate 
enrollment action. 

34. (Original) The apparatus of claim 27, wherein said method further 
includes the step of: 

(h) performing said workflow, wherein said certificate related action is a 
certificate enrollment action and wherein said step (h) includes the step of: 

(1) obtaining a certificate, wherein said step (h)(1) includes the steps 

of: 

(i) authenticating said user; 

(ii) forwarding said request to a Certificate Processing Server; 

(iii) receiving said certificate; and 

(iv) storing said certificate. 

35. (Original) The apparatus of claim 27, wherein said method further 
includes the step of: 

(j) performing said workflow, wherein said certificate related action is a 
certificate renewal action and wherein said step (j) includes the step of: 

(1) obtaining a certificate, wherein said step (j)(l) includes the steps 

of: 

(i) authenticating said user; 

(ii) forwarding said request to a Certificate Processing Server; 

and 
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(iii) receiving a certificate renewal acknowledgement. 

36. (Original) The apparatus of claim 27, wherein said method further 
includes the step of: 

(k) performing said workflow, wherein said certificate related action is a 
certificate revocation action and wherein said step (k) includes the step of: 

(1) revoking a certificate, wherein said step (k)(l) includes the steps 

of: 

(i) authenticating said user; and 

(ii) forwarding said request to a Certificate Processing Server. 

37. (Canceled) 

38. (Original) A method comprising the steps of: 

(a) receiving a request for a certificate related action for a user; and 

(b) retrieving a workflow for responding to said request from a set of 

workflows, 

wherein said workflow corresponds to said certificate related action and a 
set of characteristics for said user, 

wherein said set of workflows includes a plurality of workflows for 
responding to said certificate related action, and 

wherein each workflow in said plurality of workflows corresponds to a 
different set of characteristics for a user. 



39. (Original) The method of claim 38, further including the step of: 
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(c) receiving said plurality of workflows. 

40. (Original) The method of claim 38, wherein said method further includes 

the steps of: 

(d) performing said workflow, wherein said step (d) includes the steps of: 

(1) retrieving an approval response; and 

(2) obtaining a certificate; 

(e) receiving a second request for a second certificate related action for a 

s econd user; 

(f) retrieving a second workflow for responding to said second request from 
said set of workflows, wherein said second workflow corresponds to said second certificate 
r elated action and a set of characteristics for said second user; and 



of: 



response. 



(g) performing said second workflow, wherein said step (g) includes the step 



(1) obtaining a second certificate without retrieving an approval 



41 . (Original) The method of claim 40, wherein said certificate related action 
and said second certificate related action call for the same certificate related action. 

42. (Original) The method of claim 40, wherein said steps (a), (b), (d), (e), (f), 
and (g) are performed by an Identity System in communication with an Access System. 

43. (Original) One or more processor readable storage devices having 
processor readable code embodied on said processor readable storage devices, said processor 
readable code for programming one or more processors to perform a method comprising the 
steps of: 

(a) receiving a request for a certificate related action for a user; and 
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(b) retrieving a workflow for responding to said request from a set of 

workflows, 

wherein said workflow corresponds to said certificate related action and a 
set of characteristics for said user, 

wherein said set of workflows includes a plurality of workflows for 
responding to said certificate related action, and 

wherein each workflow in said plurality of workflows corresponds to a 
different set of characteristics for a user. 



44. (Original) One or more processor readable storage devices according to 
claim 43, wherein said method further includes the step of: 

(c) receiving said plurality of workflows. 

45. (Original) One or more processor readable storage devices according to 
claim 43, wherein said method further includes the steps of: 

(d) performing said workflow, wherein said step (d) includes the steps of: 

(1) retrieving an approval response; and 

(2) obtaining a certificate; 

(e) receiving a second request for a second certificate related action for a 

second user; 

(f) retrieving a second workflow for responding to said second request from 
said set of workflows, wherein said second workflow corresponds to said second certificate 
related action and a set of characteristics for said second user; and 

(g) performing said second workflow, wherein said step (g) includes the step 

of: 
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(1) obtaining a second certificate without retrieving an approval response. 

46. (Original) One or more processor readable storage devices according to 
claim 45, wherein said certificate related action and said second certificate related action call for 
the same certificate related action. 

47. (Original) One or more processor readable storage devices according to 
claim 45, wherein said steps (a), (b), (d), (e), (f), and (g) are performed by an Identity System in 
communication with an Access System. 

48. (Original) An apparatus comprising: 
one or more communications interfaces; 
one or more storage devices; and 

one or more processors in communication with said one or more storage devices 
and said one or more communication interfaces, said one or more processors perform a method 
comprising the steps of: 

(a) receiving a request for a certificate related action for a user; and 

(b) retrieving a workflow for responding to said request from a set of 

workflows, 

wherein said workflow corresponds to said certificate related action and a 
set of characteristics for said user, 

wherein said set of workflows includes a plurality of workflows for 
responding to said certificate related action, and 

wherein each workflow in said plurality of workflows corresponds to a 
different set of characteristics for a user. 
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49. (Original) The apparatus of claim 48, wherein said method further 
includes the step of: 

(c) receiving said plurality of workflows. 

50. (Original) The apparatus of claim 48, wherein said method further 
includes the steps of: 

(d) performing said workflow, wherein said step (d) includes the steps of: 

(1) retrieving an approval response; and 

(2) obtaining a certificate; 

(e) receiving a second request for a second certificate related action for a 

second user; 

(f) retrieving a second workflow for responding to said second request from 
said set of workflows, wherein said second workflow corresponds to said second certificate 
related action and a set of characteristics for said second user; and 

(g) performing said second workflow, wherein said step (g) includes the step 



of: 



response. 



(1) obtaining a second certificate without retrieving an approval 



51. (Original) The apparatus of claim 50, wherein said certificate related 
action and said second certificate related action call for the same certificate related action. 

52. (Original) The apparatus of claim 50, wherein said steps (a), (b), (d), (e), 
(f), and (g) are performed by an Identity System in communication with an Access System. 
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